[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 917
  • Last Modified:

ISA, sharepoint and ftp - Forms Based Authentication questions

My company currently has a sharpoint site that is accessed by both internal employees and external clients.  We have created AD accounts for the external people.  We are in the process of setting up and FTP site also that will need the same access.  I am beginning to look into FBA (forms based authentication) so the external users do not need to have accounts created in our active directory.  Would ISA be a good canidate to help me accomplish a cleaner setup of this system?  I am trying to see if this should be an avenue I should look at in order to allow external clients a way to authenticate to our sharepoint and FTP through some central console and allow them access to their info and also allow my internal users a way to securly access these same systems when out of the office?

Thanks for any help.
0
martin2478
Asked:
martin2478
  • 4
  • 3
1 Solution
 
Keith AlabasterCommented:
Maybe and maybe not. ISA is a great tool but you sound as though you are moving to the next level here. Have a look at the IAG Server - ISA's sister product in the Forefront: Edge portfolio.

http://www.microsoft.com/forefront/en/us/default.aspx
0
 
martin2478Author Commented:
Thanks for the response.  I will look more into IAG but it was the forms based authentication that is mentioned in ISA that I am interested in.  Right now I have sharepoint , ftp , and web outlook setup for remote use.  I am really looking for a clean way to authenticate people outside of our company and tie that into them being able to access our ftp and sharepoint sites with the same usernames and passwords without me having to create the accounts in my active directory.

I amy be looking at the wrong app but any more tips would be great.

0
 
Keith AlabasterCommented:
Understood. But ISA is not a repository. Where are you going to store the account details of external users - I assume an internal SQL server or something?

We used a separate AD in the DMZ and then used identity Lifecycle Manager (ILS) to do all of this with IAG on the outside and ISA on the inside. Have you reviewed the creating the extranet for Sharepoint guides?

That said, if you simply want a control point then yes, ISA will do it.
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
martin2478Author Commented:
Thanks for the info.  I was planning on using SQL to house external user accounts.

Your setup seems like a secure setup and will have to look into something like that more.

I have not read the extranet for sharepoint guides, I believe I should start there before continuing the conversation to get a better grasp.  But before into reading does this mentality make any sense to you.

Have internal users have AD accounts.  External users use an FBA tied into a SQL database.  Use ISA as a portal for external users to authenticate with and then from there they will have access to our sharepoint and ftp site?

Thanks again for all of your help.  The fog seems to be clearing finally in my head.
0
 
Keith AlabasterCommented:
your approach is fine - and often adopted. The part where many go wrong is to NOT think about where it might go in the future. For example, if you decide to open up the portal/self-service aspects then are you going to want to have to administrate all of that? the authentication? The authorisation? Small things in the early days but it can grow as the benefits are identified and you want to realise them.

Anyway, this is a useful place to start. For reference we use the split model.
With ISA2006
http://technet.microsoft.com/en-us/library/cc268368.aspx

Extranet
http://technet.microsoft.com/en-us/library/cc263513.aspx#section3
0
 
martin2478Author Commented:
Thanks for all of your help.  This has me heading in the right direction now.
0
 
Keith AlabasterCommented:
Thanks :)
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now